CN105379227A - A direct connect virtual private interface for a one to many connection with multiple virtual private clouds - Google Patents
A direct connect virtual private interface for a one to many connection with multiple virtual private clouds Download PDFInfo
- Publication number
- CN105379227A CN105379227A CN201480037868.7A CN201480037868A CN105379227A CN 105379227 A CN105379227 A CN 105379227A CN 201480037868 A CN201480037868 A CN 201480037868A CN 105379227 A CN105379227 A CN 105379227A
- Authority
- CN
- China
- Prior art keywords
- virtual
- privately owned
- interface
- direct connection
- infrastructure
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L49/00—Packet switching elements
- H04L49/35—Switches specially adapted for specific applications
- H04L49/354—Switches specially adapted for specific applications for supporting virtual local area networks [VLAN]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/46—Multiprogramming arrangements
- G06F9/50—Allocation of resources, e.g. of the central processing unit [CPU]
- G06F9/5061—Partitioning or combining of resources
- G06F9/5072—Grid computing
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/40—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks using virtualisation of network functions or resources, e.g. SDN or NFV entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/50—Network service management, e.g. ensuring proper service fulfilment according to agreements
- H04L41/5041—Network service management, e.g. ensuring proper service fulfilment according to agreements characterised by the time relationship between creation and deployment of a service
Abstract
Systems and methods include a direct connect virtual private interface includes a physical port configured to receive one physical connection in order to provide two or more virtual connections for multiple virtual private clouds (VPCs) within a public cloud provider's infrastructure. Each public cloud infrastructure has its own multiple VPCs. Each VPC is an on demand configurable pool of shared computing resources allocated within each public cloud provider's infrastructure that provides a certain level of isolation via an access control mechanism between different organizations using the pool of shared computing resources of that VPCs public cloud infrastructure. The direct connect virtual private interface is configured to provision a virtual circuit from the one physical connection between the public cloud infrastructure for each VPC within each public cloud provider's infrastructure.
Description
The cross reference of related application
This application claims the sequence number submitted on May 7th, 2013 is 61/820, the name of 368 is called the U.S. Provisional Patent Application of " DIRECTCONNECTVIRTUALPRIVATEINTERFACEFORAONETOMANYCONNECT IONWITHMULTIPLEVIRTUALPRIVATECLOUDS ", and on May 6th, 2014 submit to sequence number be 14/270, the name of 667 is called the benefit of priority of the U.S. Non-provisional Patent application of " DIRECTCONNECTVIRTUALPRIVATEINTERFACEFORAONETOMANYCONNECT IONWITHMULTIPLEVIRTUALPRIVATECLOUDS ", its full content is hereby expressly incorporated by reference.
Copyright statement
A part for the disclosure of this patent document comprises material protected by copyright.Copyright holder is had no objection for the facsimile copy undertaken by any software engine and module thereof, this is because its appear at patent and trademark office patent document or record in, but, retain every other copyright.
Technical field
Embodiments of the invention relate generally to comprises the communication network of Ethernet.
Background technology
Privately owned operator generally creates its oneself private network, and if they need worldwide to lay new circuit, this will be very expensive.Cloud computing allows tissue to create the cloud of oneself.
Summary of the invention
The embodiment described in literary composition is used for, via directly connecting virtual privately owned interface, creating single physical and connecting, think that each virtual privately owned cloud in public cloud infrastructure provides virtual circuit between public cloud infrastructure and multi-tenant data center.The virtual privately owned interface of direct connection, by utilizing these thinkings and Ethernet exchanging (such as the Ethernet exchanging of Equinix company), provides facility client, operator and cloud supplier linked together.The virtual privately owned interface of direct connection and related system consider many tenants when designing.Its cloud business is extended to its client with the cost significantly saved by permission service provider by the virtual privately owned interface of direct connection and related system, owing to only needing one to the physical connection of cloud service provider so that business is sent to multiple client, this concept will advance the general use of virtual privately owned cloud.
System and method comprises and directly connects virtual privately owned interface, the virtual privately owned interface of direct connection comprises: physical port, be configured to reception physical connection, to provide two or more virtual links for multiple virtual privately owned cloud (VPC) in the infrastructure of public cloud provider.Each public cloud infrastructure has its oneself multiple VPC.Each VPC is the configured pool as required of the shared computation resource of distributing in each public cloud provider infrastructure, the infrastructure of public cloud provider is via access control mechanism, between the different tissues of shared computation resource pool using this VPC public cloud infrastructure, provide isolation to a certain degree.The virtual privately owned interface configuration of direct connection is: for each VPC in each public cloud provider infrastructure, provide virtual circuit from the physical connection of between public cloud infrastructure.
Accompanying drawing explanation
Multiple accompanying drawing relates to embodiments of the invention.
Figure 1A shows the infrastructure of the exemplary public cloud provider by being connected directly to virtual privately owned interface according to the embodiment described in literary composition.
Figure 1B shows at least has the virtual privately owned interface of exemplary direct connection that couples directly to the physical port of the infrastructure of public cloud provider.
Fig. 2 cloud shown for syndication users connects the exemplary Ethernet exchanging of connection between operator.
Fig. 3 shows in public cloud infrastructure and directly connects and create single physical between virtual privately owned interface and connect the illustrative methods that each virtual privately owned cloud thought in public cloud infrastructure provides virtual circuit.
The present invention can have various modifications and alternative forms, and its specific embodiment is shown in the drawings by way of example, and will describe in detail in the text.Should be appreciated that and the invention is not restricted to disclosed special shape, on the contrary, the present invention will contain all modifications fallen in the spirit and scope of the present invention, equivalent and replacement.
Embodiment
In the following description, in order to provide thorough understanding of the present invention, set forth multiple detail, the example etc. of the parts of such as concrete data-signal, name, connection, carrier wire number.But, obviously, to those skilled in the art, when there is no these details, also can implement the present invention.In other cases, do not describe known parts or method in detail, but illustrate in block diagrams, to avoid unnecessarily making the present invention obscure.The concrete further numeric reference of the such as first privately owned operator can be carried out.But this concrete numeric reference should not be interpreted as literal order, but should be interpreted as, the first privately owned operator is different from the second privately owned operator.Therefore, the detail set forth is only exemplary.Detail can be different, and still consider within the spirit and scope of the present invention.
Usually, describe equipment and device examples process, directly connect virtual privately owned interface for one of multiple virtual privately owned cloud and related system is connected to provide to many (two or more).The various exemplary realization of this design of accompanying drawing and text description.
With reference to Fig. 1-Fig. 2, the virtual privately owned interface of direct connection and a large amount of parts (comprise two or more virtual routers of the MX5 of such as Juniper company, such as Alcatel7210 switch two or more serve access switch) coordinate to set up VLAN, with at each virtual privately owned cloud with directly connect between virtual privately owned interface and create virtual flow-line passage.Each virtual privately owned cloud have oneself to the port directly connected in virtual privately owned interface.Two or more virtual routers use routing table, with one in multi-link foundation, allow the connection/communication of the flow in each virtual privately owned cloud.It should be noted that the service of identical type is sent to operator or enterprise by the concept that cisco router and virtual flow-line can be used to forward (VRF).
Therefore the virtual privately owned interface of direct connection can comprise physical port, is configured to reception physical connection, thinks that multiple virtual privately owned cloud provides two or more virtual links.Each public cloud infrastructure can have its oneself multiple virtual privately owned cloud (VPC), and each VPC is the configured pool as required of the shared computation resource of distributing in given public cloud infrastructure.Multiple virtual privately owned cloud via access control mechanism, between the different tissues of the shared computation resource pool of the public cloud infrastructure of this VPC of use, can provide isolation to a certain degree.Isolation to a certain degree should be understood between the different tissues using shared computation resource, create the isolation determining rank.Determine that the isolation of rank can be completely isolated, or by one or more configurations of describing in literary composition some subsets by the isolation of Operation system setting or control.The virtual circuit of a physical connection between the virtual privately owned interface of the direct connection each virtual privately owned cloud that can also be configured in each public cloud provider infrastructure provides from public cloud infrastructure.
Figure 1A shows the infrastructure 20 being connected directly to the public cloud provider of virtual privately owned interface according to the embodiment described in literary composition.The infrastructure 20 of each public cloud provider, is depicted as an exemplary base facility of US-EAST-1, has one or more virtual privately owned cloud (VPC), such as multiple virtual privately owned cloud VPC1, VPC2, VPC3, VPC4.
Figure 1B shows the virtual privately owned interface 50 of exemplary direct connection, and it has at least one physical port 40, to couple directly to the infrastructure 20 of public cloud provider.The virtual privately owned interface configuration of exemplary direct connection has the multiple private virtual interfaces (Pri_VI) 60 through a physical connection 40.The virtual privately owned interface of direct connection comprises multiple parts to provide private virtual interface.Such as, above-mentioned parts can comprise: one or more hardware router 70, can be configured to and realize two or more virtual routers 72 and virtual flow-line forwarding (VRF); And one or more service access switch 80, can be configured to and set up VLAN (VLAN) 82, VLAN102-105, to set up virtual flow-line passage at each virtual privately owned cloud VPC1-VPC4 with being directly connected between virtual privately owned interface 50.
The virtual privately owned interface of direct connection can have: multiple physical port, and the infrastructure for multiple public cloud provider is physically connected to and directly connects virtual privately owned interface; And two or more virtual ethernet circuit, directly connect virtual privately owned interface to be connected to.
Therefore, each VPC can have oneself to the private virtual interface 60 directly connected in virtual privately owned interface 50.The software run by adding, delete, on one or more physical hardware routers of movement, can set up or simulate multiple virtual router, to expand as required or reduction system.
Multiple virtual router 72 can use one or more routing table 74.Multiple virtual router uses the outside of the traffic communication between the multiple VPC of routing table process to exchange and communicates with the privately owned cloud of internal virtual.The route mixing in same routing table can not be there is, make each route in given routing table be unique.But, between the routing table of each virtual router and in different routing table, the overlap between identical route may be there is.
In the exemplary embodiment, multiple virtual router uses its oneself routing table, they may containing the one or more I/O routes from other routing tables, with passing through exemplary one of the virtual privately owned interface foundation of directly connection in multi-link foundation, the flow in each virtual privately owned cloud is allowed to connect/communicate.Virtual router can be used as the independent community of each routing table inside, that is, each route in table is unique, but may be overlapping between virtual routing tables.The virtual privately owned interface of direct connection can be configured to coordinate, to allow public cloud provider, network VLAN between tissue and telecom operators overlapping.
Via directly connecting private virtual interface, the embodiment described in literary composition may be used for creating the single physical connection between public cloud infrastructure and multi-tenant data center, thinks that the virtual privately owned cloud in public cloud infrastructure provides virtual circuit.Each VPC can have its oneself to the port (private virtual interface (Pri_VI)) directly connected in virtual privately owned interface.Each tissue with virtual privately owned cloud can have and resides at client terminal device intracardiac in multi-tenant data.The virtual privately owned interface of direct connection sets up virtual circuit between the VPC and client terminal device of public cloud.
As shown in Figure 2, Ethernet exchanging 94 is for being polymerized the connection between the connection of client's cloud with operator.Router 90 allows client 92 enable and controls the access between the network of all clients in each position.The use of virtual router and ethernet switch hub allows the network subset/VLAN between cloud provider 96/ client 92 and operator 98 overlapping.Therefore, by distributing private ip subset sums virtual communication structure (set of such as VLAN or encrypted communication channel) for each tissue, between the every other client/tissue of the same virtual privately owned cloud of a client/organize and use of use the one VPC, isolation can be realized.
In the exemplary embodiment, can isolated data communication communicate with control over different networks.Such as, the second router can be configured to: the control communication between the tissue processing a use VPC and each local area network (LAN) of the telecom operators being connected to the tissue directly connecting virtual privately owned interface.This second router can process the control communication of tissue, and enable and control in each public cloud provider infrastructure access between organized local area network (LAN).
The cloud connection of evolution has the ability being separated customer information/be isolated into the privately owned cloud of private virtual on Web service platform (Web service of such as Amazon), uses single AWS directly to connect for transmission simultaneously.It should be noted that identical concept is not limited only to Amazon, it may be used for being connected to other exemplary cloud service provider.Google, Amazon, Salesforce and MicrosoftAzure are some known exemplary public cloud infrastructure/cloud providers.
In the exemplary embodiment, virtual privately owned cloud (VPC) can be present in the privately owned cloud shared or in public cloud service platform (that is, Intercloud).VPC is the configured pool as required of the shared computation resource in public cloud, between the tenant being isolated in public cloud.Via access control mechanism perform public cloud tenant between isolation.Along with the introduction of isolation level, many tenants infrastructure of provider is converted into single tenant's infrastructure.Therefore, one or more telecom operators can be connected to and directly connect virtual privately owned interface.Public cloud infrastructure can also have multiple tissues of the shared computation resource used in this public cloud infrastructure.Each tissue can have oneself part of the shared computation resource pool of the VPC forming this tissue, and it is isolated with its hetero-organization of the shared computation resource used in same public cloud infrastructure.
Such as, AmazonWeb service uses the virtual privately owned cloud of Amazon, and it allows the cloud service of Amazon elastic calculation to be connected to traditional infrastructure by IPsec virtual private networks.In AmazonWeb service (AWS), the use of VPC is free, but any virtual private networks (VPN) that user uses will be charged.Cloud computing is used as service at the computational resource (hardware and software) of the upper transmission of network (normally Ethernet).Such as, Email can be the service provided by network.Cloud computing uses the concept merging infrastructure and share service.The data of user, software and calculating are entrusted to remote service by cloud computing.Each user accesses the application program based on cloud by the desktop of web browser or lightweight or mobile app, and the data of business software and user are stored in the server of remote location.The virtual privately owned interface of direct connection allows to be maximized by these cloud computing resources in an easy way.
The virtual privately owned interface configuration of direct connection is the physical connection only needing to be connected with the infrastructure of public cloud provider, to create the multiple virtual links with the corresponding virtual privately owned interface directly connected in virtual privately owned interface, with by service transmission to multiple tissue, oneself VPC of each tissue is in the infrastructure of this public cloud provider.Each VPC can use the capacity of the little byte-sized of the shared computation resource pool distributed in given public cloud infrastructure.
Use software namely to serve (SaaS), can be the access that user provides application software and database.The infrastructure of cloud provider management operating application program and platform.SaaS is sometimes referred to as " as required software ", and usually fixes a price based on by use paying.For cloud infrastructure services (SaaS), the public cloud provider of public cloud infrastructure is provided and in the infrastructure of public cloud provider, realizes company's possibility difference of VPC service.
Cloud provider provides hardware, software and personal services to be used for these parts of installation and maintenance, to support cloud.SaaS stores the data of user on the server of cloud provider.Cloud computing depends on resource-sharing, with the continuity realized on network and the large-scale production being similar to government utility (such as electrical network).
The temporary Virtual circuit that the duration that switched virtual circuit (SVC) (SVC) can be merely data transmission conversation sets up and maintains.The virtual privately owned interface configuration of direct connection forms virtual link for using switched virtual circuit (SVC) (SVC).The mechanism that can be communicated by group mode carrys out delivery flow rate, after making to establish connection via virtual circuit between two nodes or application process, and can transmission bit stream or byte stream among the nodes.Virtual circuit protocol allows the agreement of higher level to avoid process data being divided into fragment, bag or frame, and wherein, SVC is merely duration of data transmission conversation and the interim connection of setting up and maintaining.
Service access switch can allow telecom operators' service to provide 2 communication paths from the residence of end user to the facility of client.Service access switch can provide the boundary of Ethernet, access and aggregation apparatus with transmits high level, enable MPLS operator Ethernet, support business networked services.
The virtual privately owned interface of direct connection and related system meet the needs of many tenants cloud access strategy.The single physical that service provider or enterprise can use the network of cloud service provider connects, by the network of cloud service provider, multiple service provider client or cloud provider client can access cloud public infrastructure and only can access its oneself cloud infrastructure.Because maintain the existing security setting of cloud provider.
The virtual privately owned interface of direct connection and related system provide low delay, flexible, reliable platform, and it allows user for their control hierarchy having access to raising to its VPC.
Can create by multiple method and directly connect virtual privately owned interface and related system, to solve user's request.Such as, directly the virtual privately owned interface of connection and related system can use cisco equipment and VRF.In addition, such as, directly the virtual privately owned interface of connection and related system can use Juniper/Alcatel infrastructure and virtual router to solve this problem.The virtual privately owned interface of direct connection allows cloud provider to provide many tenants service offering.
Ethernet exchanging allows the connectedness of client and the great flexibility of transparency (VLAN mark).By providing a kind of method controlling to communicate, this technology drastically increases the ability that client needs to be connected to cloud provider.Ethernet exchanging allows the direct connection of cloud provider.
The virtual privately owned interface of direct connection for operator and client all attractive.
The virtual privately owned interface of direct connection provide client/operator and cloud provider are linked together convenient time ecosystem factor make use of these thoughts and Ethernet exchanging, the Ethernet exchanging of such as Equinix.The virtual privately owned interface of direct connection and related system consider many tenants when designing.Its cloud service is extended to its client with significant cost savings by permission service provider by the virtual privately owned interface of direct connection and related system.This is because, only need, to a physical connection of cloud service provider, business is sent to multiple client.The virtual privately owned interface of direct connection and related system are also for corporate client provides similar cost savings.
The single physical that tissue can use the infrastructure of public cloud provider connects.But connect at the single physical of the infrastructure to public cloud provider, multiple service provider client is accessed its oneself VPC and is only accessed its oneself VPC.Therefore, the infrastructure security maintaining public cloud provider is arranged, this is because, for each in multiple service provider client, all virtual be all unique, therefore, the flow from different multiple service provider client can not mix.
The virtual privately owned interface of direct connection and related system provide significant cost savings for client and operator, comprising: link cost; Automatic supply; Quick Time To Market; The competition price produced due to customer selecting; The reliability of management platform; The multiple service of light access; The low delay caused due to vicinity; And other similar advantages.
In cloud switched environment, adopt and directly connect virtual privately owned interface and related system.The driving factors of the virtual privately owned interface of direct connection and related system are the diversity connection being provided to user selected.
The virtual privately owned interface of direct connection can use the exemplary codes such as described in detail in the provisional priority (priorityprovisional) of the instant application of switched virtual circuit (SVC) (SVC) switch.Interface can use the exemplary codes of such as similar detailed description in for the provisional priority shown in SVC router.Other exemplary coding can also be used to help create this interface.This interface can create extra layer substantially for virtual flow-line.
In one embodiment, the software for contributing to the agreement relevant to process and algorithm can be embedded into machine readable media.Non-transitory machine readable media comprises any mechanism providing (such as, storing) information with machine (such as, computer) readable form.Such as, machine readable media comprises: read-only memory (ROM); Random access memory (RAM); Magnetic disk storage medium; Optical storage medium; Flash memory device; DVD, EPROM, EEPROM, FLASH, magnetic or light-card, or the medium of any type being suitable for store electrons instruction.In the process creating equipment and/or the method described in literary composition, storage indication equipment on a machine-readable medium and/or the information of method can be used.Software code can be write with such as C++, Java or other software languages.
Routing instances is summarized
By comprising statement at following stratum level, you can create the Multi-instance of BGP, IS-IS, LDP, multicast source discovery agreement (MSDP), OSPF version 2 (usually referred to as OSPF), OSPF version 3 (OSPFv3), Protocol Independent Multicast (PIM), RIP and static routing:
[editrouting-instancesrouting-instance-nameprotocols]
[editlogical-systemslogical-system-namerouting-instancesrouting-instance-nameprotocols]
You can also create multiple routing instances of the interface for separating of the individual DHCP wholesale user (retailer) of routing table, Routing Protocol and layer 3 in Wholesale network.For the information of the configuration layer 3 Wholesale network service about how, see JunosOSBroadbandSubscriberManagementSolutionsGuide.
Routing instances is the set of routing table, interface and Routing Protocol parameter.Set of interfaces belongs to routing table, the information in Routing Protocol state modulator routing table.
The virtual privately owned interface of direct connection can be configured to each VPC distributing the infrastructure of public cloud provider by its oneself private virtual interface, secure virtual route network and its oneself routing table directly connected in virtual privately owned interface, with keep from each VPC data/communication flows separately.Therefore, the flow of each VPC does not mix with the flow of the basis instrument from public cloud provider.Two or more virtual routers of the infrastructure of public cloud provider can be configured to mutually distribute route to make it possible to access its VPC.
The virtual privately owned interface of direct connection includes multiple parts to provide each virtual circuit.Multiple parts can comprise cisco router and virtual flow-line forwards (VRF) to create safety circuit at each virtual privately owned cloud and direct connection between virtual privately owned interface.VRF allows the Multi-instance of routing table to coexist in same router simultaneously.By allow when not using multiple device by network path segmentation, add function.Because flow is automatically separated, therefore VRF also add internet security, and can eliminate the needs to encryption and certification.The virtual privately owned interface of direct connection can also coordinate with the infrastructure of each public cloud provider, with allow each VPC allow this VPC convergent-divergent its to the use of shared computation resource pool, perform the performance of rank needed for VPC, and have required and with the fail safe of this VPC compatibility.In the exemplary embodiment, set up the direct connection between VPC in direct connection in the virtual circuit created in virtual privately owned interface instead of attempt to connect over the public internet.
Eight kinds of routing instances can be configured: forward, layer 2 controls (only MX series router), layer 2 virtual private networks (VPN), do not forward, VPN route and forwarding (VRF), virtual router, virtual privately owned LAN serve (VPLS) and virtual switch (only MX series router).
Each routing instances has unique title and corresponding IP unicast table.Such as, if configure routing instances with title my-instance, then corresponding IP unicast table is my-instance.inet.0.All routes of my-instance are all installed in my-instance.inet.0.Default route example, that is, master, refer to maininet.0routingtable.Main routing instances is reserved, can not be designated as routing instances.
The interface that multiple routing instances carrys out individual DHCP (DHCP) the wholesale user (retailer) of disjoint route table, routing policy and layer 3 in Wholesale network can be created.Each routing instances can be made up of following set:
Routing table
Belong to the interface of these routing tables
Route option configures
Eight type routing instances can be configured:
This routing instances type forward-is used to apply for the forwarding based on filter.For this example types, do not map one to one between interface and routing instances.Total interface all belongs to default example inet.0.
Layer 2 control-(only MX series router) uses this routing instances type for RSTP or MSTP in the customer edge interface of VPLS routing instances.If the many places of customer edge interface in Liang Ge provider edge interface, then can not use this example types.If the many places of customer edges interface are in Liang Ge provider edge interface, then use default BPDU passage (BPDUtunneling).
Layer 2VPN-use this routing instances type to realize for layer 2 virtual private networks (VPN).
Do not forward-use this routing instances type when needs disjoint route table information.There is no corresponding transmitting.All routes are all installed in default transmitting.IS-IS example is strict not forwarding instance type.
Virtual router-be similar to VPN route and forwarding instance type, but for the relevant application of non-VPN.For this example types, there is no the requirement of virtual flow-line and forwarding (VRF) entrance, VRF outlet, VRF target or Routing identification.
Virtual switch-(only MX series router) uses this virtual switch example types to isolate LAN fragment and its Spanning-Tree Protocol (STP) example, and is separated its vlan identifier space.For the more details about configuration virtual switch, see JunosLayer2ConfigurationGuideandtheJunosOSMXSeriesEthern etServicesRoutersSolutionsGuide.
The point-to-multipoint LAN that VPLS-use virtual private LAN service (VPLS) routing instances type is used between one group of website in VPN realizes.
VRF-use VPN route and forwarding route (VRF) example types are used for layer 3VPN and realize.The VPN that this routing instances type has VPN routing table and correspondence transmits.For this example types, have between interface and routing instances and map one to one.Each VRF instance is corresponding to transmitting.Route on interface enters into corresponding transmitting.
By comprising statement in [editprotocols] and [editrouting-options] level, overall Route Selection and agreement can be configured for master instance (masterinstance).Unless specified routing instances, otherwise route by default installation in main routing instances inet.0.
The Multi-instance of BGP, OSPF and RIP is used for layer 3VPN and realizes.The Multi-instance of BGP, OSPF and RIP keeps the routing iinformation of different VPN separately.VRF instance to the route of provider edge (PE) router advertisement from customer edges (CE) router, and notices the route from pe router to ce router.Each VPN only receives the routing iinformation belonging to this VPN.
The virtual privately owned interface of direct connection is configured to: except the multiple tissues with its oneself VPC in the infrastructure of public cloud provider, also use one or more common interface, this one or more common interface is noticed additional networks via BGP and is used in the infrastructure of public cloud provider.Common interface and VPC can by the infrastructure of public cloud provider and the physical connections directly connected between virtual privately owned interface.Therefore common virtual interface makes it possible to the business Web service getting involved host computer application, such as Amazon elastic calculation cloud (EC2) Classical examples, public cloud provider API (API) end points.
Forwarding instance is for realizing the forwarding based on filter of public Access Layer application.
PIM example is for realizing the multicast of VPN application.
Very large network can be divided into less management entity by the non-forwarded example of IS-IS and OSPF.Non-forwarded example may be used for filter route, instead of configures a large amount of filters, is therefore instantiation strategy.The routing iinformation amount that all parts that non-forwarded example may be used for reducing to run through network are noticed.The routing iinformation relevant to particular example can wake up with a start notice as required, instead of is communicated to whole network.
Fig. 3 shows in public cloud infrastructure and directly connects and create single physical between private virtual interface and connect the example that each virtual privately owned cloud thought in public cloud infrastructure provides the method for virtual circuit.
In step 305, physical port is configured to reception physical connection, is coupled to directly connects private virtual interface for each public cloud.
In step 310, for the multiple virtual privately owned cloud in the infrastructure of each public cloud provider, a physical connection provides two or more virtual link.Each public cloud infrastructure has its oneself multiple virtual privately owned cloud (VPC).Each VPC is the configured pool as required of the shared computation resource be distributed in given public cloud infrastructure, wherein, above-mentioned given public cloud infrastructure, via access control mechanism, provides isolation to a certain degree between the different tissues of shared computation resource pool using the public cloud infrastructure of this VPC.
In step 315, directly connecting virtual privately owned interface configuration is: be each virtual privately owned cloud in the infrastructure of each public cloud provider, provide one or more virtual circuit from the physical connection of between public cloud infrastructure.
The part giving above-mentioned specific embodiment with algorithm is represented by the symbol of the operation of the data bit in computer storage.These arthmetic statements and expression are other people means that those of ordinary skill in the art are used for its action being conveyed to most effectively the art.Usually, algorithm be envisaged as be can cause expected result be certainly in harmony sequence of steps.Above-mentioned steps is the step of the physical manipulations needing physical quantity.Usually still not necessarily, the form of these variablees is the electrical or magnetic signals that can be stored, transmit, combine, compare and operate in addition.Mainly due to the reason of usual usage, these signals are called bit, value, element, symbol, character, term, numeral etc., this is proved to be easily sometimes.These route, algorithms etc. can be write with multiple different programming language.In addition, implementation algorithm can be carried out with the gate configured in the code line in software, software or the two combination.
But should keep firmly in mind, all these are relevant with the physical quantity of similar term all to suitable, and it is only the convenient label being applied to this tittle.Unless can obviously find out separately have special instruction from above-mentioned discussion, in whole specification, use the discussion of the term of such as " process " or " calculating (computing) " or " calculating (calculating) " or " determination " or " display " etc., refer to action and the process of computer system or similar Electronic Accounting Machine Unit, it will be expressed as data manipulation that physics (electronics) measures and convert at computer system memory or register in the register of computer system or memory, or other this information store, transmission, with other data being expressed as physical quantity in display unit similarly.
In an embodiment, logic comprises electronic circuit, software containing instruction mode or both combination in any of following Boolean logic rule.
Although shown specific embodiments more of the present invention, these embodiments are the invention is not restricted to.Such as, the most of function holding part capable by electronic hardware group can be copied by software emulation.Therefore, can the function of hardware component of analog input/output circuit by the software having write these identical functions.The present invention should not be understood to be limited to specific embodiment described herein, but is only limited by the scope of claims.
Claims (20)
1. one kind directly connects virtual privately owned circuit, comprise physical port, described physical port is configured to reception physical connection, so that for the multiple virtual privately owned cloud (VPC) in the infrastructure of each public cloud provider provides two or more virtual links, wherein, each public cloud infrastructure has its oneself multiple virtual privately owned cloud, wherein, each virtual privately owned cloud is the configured pool as required of the shared computation resource of distributing in the infrastructure of each public cloud provider, each virtual privately owned cloud provides isolation to a certain degree via access control mechanism between the different tissues in pond using the shared computation resource of the public cloud infrastructure of this virtual privately owned cloud, wherein, the virtual privately owned interface of described direct connection is configured to provide multiple virtual circuit, wherein, the virtual privately owned interface of described direct connection is configured to from the described physical connection between described public cloud infrastructure as each virtual privately owned cloud in the infrastructure of each public cloud provider provides virtual circuit.
2. the virtual privately owned interface of direct connection according to claim 1, wherein, the virtual privately owned interface of the described direct connection infrastructure had for multiple public cloud provider is physically connected to multiple physical ports of the virtual privately owned interface of described direct connection, and is connected to the physical port of the virtual privately owned interface of described direct connection for two or more privately owned ethernet lines.
3. the virtual privately owned interface of direct connection according to claim 2, wherein, one or more telecom operators are connected to the virtual privately owned interface of described direct connection, and wherein, first public cloud infrastructure has multiple tissues of the described shared computation resource used in described first public cloud infrastructure, each tissue utilizes the virtual privately owned cloud of oneself part formation for this tissue in the pond of its shared computation resource, and this tissue is kept apart with its hetero-organization of the described shared computation resource used in described first public cloud infrastructure.
4. the virtual privately owned interface of direct connection according to claim 3, wherein, each virtual privately owned cloud have its oneself to the private virtual interface (Pri_VI) in the virtual privately owned interface of described direct connection, and wherein, arrange or simulate multiple virtual router by the software run on one or more physical hardware router, described one or more physical hardware router can be arranged as required, dismantle, move and scaling.
5. the virtual privately owned interface of direct connection according to claim 3, wherein, each virtual privately owned cloud have its oneself to the port private virtual interface in the virtual privately owned interface of described direct connection, and wherein, there is virtual privately owned cloud each organize also to have reside in client terminal device intracardiac in multi-tenant data, wherein, the virtual privately owned interface of described direct connection sets up described virtual circuit between the described virtual privately owned cloud and described client terminal device of public cloud.
6. the virtual privately owned interface of direct connection according to claim 5, wherein, the virtual privately owned interface of described direct connection comprises a large amount of parts to provide described virtual circuit, wherein, described a large amount of parts comprise: can be configured to and implement one or more hardware routers that two or more virtual routers and virtual flow-line forward (VRF), and can be configured to and set up VLAN (VLAN) and access switches with the one or more services creating virtual flow-line passage between each virtual privately owned cloud and the virtual privately owned interface of described direct connection.
7. the virtual privately owned interface of direct connection according to claim 4, wherein, the virtual privately owned interface of described direct connection is configured to distribute its oneself private virtual interface, secure virtual route network and its routing table of oneself in the virtual privately owned interface of described direct connection to each virtual privately owned cloud of the infrastructure of public cloud provider, to keep the data/communication flows from each virtual privately owned cloud to separate, instead of to mix with all flows of the infrastructure from public cloud provider.
8. the virtual privately owned interface of direct connection according to claim 7, wherein, the virtual privately owned interface of described direct connection comprises a large amount of parts to provide each virtual circuit, wherein, described a large amount of parts comprise: a large amount of parts comprising cisco router and virtual flow-line forwarding (VRF) creating safety circuit between each virtual privately owned cloud and the virtual privately owned interface of described direct connection, wherein, virtual flow-line forwards and allows the Multi-instance of routing table to co-exist in same router simultaneously, wherein, the virtual privately owned interface of described direct connection coordinates with the infrastructure of each public cloud provider, this virtual privately owned cloud is allowed to regulate it to the use in the pond of shared computation resource to allow each virtual privately owned cloud, the performance level of the expectation of virtual privately owned cloud is carried out, and have expectation and with the fail safe of this virtual privately owned cloud compatibility.
9. the virtual privately owned interface of direct connection according to claim 4, wherein, described multiple their routing table of virtual router use, described routing table can comprise the one or more I/O routes from other routing tables, allow the connection/communication of the flow in each virtual privately owned cloud in arranging with this one-to-many connection of setting up at privately owned interface virtual by described direct connection, and described multiple virtual router uses the outside of the communication between the virtual privately owned cloud of described routing table process and the traffic communication between multiple virtual privately owned cloud to exchange.
10. the virtual privately owned interface of direct connection according to claim 4, wherein, the second router is configured to process the control communication between each local network and the telecom operators being connected to the virtual privately owned interface of described direct connection of described tissue of the tissue using one of virtual privately owned cloud, and makes it possible to and access between all local networks controlling the tissue in the infrastructure of each public cloud provider.
The virtual privately owned interface of 11. direct connection according to claim 4, wherein, described virtual router serves as the independent community of each routing table inside, and the virtual privately owned interface of described direct connection is configured to coordinate to allow the VLAN of public cloud provider, network between tissue and telecom operators overlapping.
The virtual privately owned interface of 12. direct connection according to claim 4, wherein, the isolation between a tissue of the virtual privately owned cloud of use first and the every other tissue using described first virtual privately owned cloud is realized by each tissue distribution private ip subnet and virtual communication structure.
The virtual privately owned interface of 13. direct connection according to claim 12, wherein, for cloud infrastructure services (SaaS), provide the public cloud provider of public cloud infrastructure different from the company realizing virtual privately owned cloud service in the infrastructure of described public cloud provider.
The virtual privately owned interface of 14. direct connection according to claim 1, wherein, the virtual privately owned interface of described direct connection is configured to only need a physical connection to be connected with the infrastructure of public cloud provider, to create the multiple virtual links with the corresponding virtual privately owned interface in the virtual privately owned interface of described direct connection, service is sent to multiple tissue, each in described multiple tissue is organized in the infrastructure of this public cloud provider the virtual privately owned cloud with them.
The virtual privately owned interface of 15. direct connection according to claim 1, wherein, the virtual privately owned interface of described direct connection is configured to use switched virtual circuit (SVC) (SVC) to form virtual link, after making to connect between two nodes or application process via virtual circuit, bit stream or byte stream can be transmitted among the nodes; Virtual circuit protocol allows more high-level protocol to avoid process by the data section of being divided into, packet or frame, and wherein, described switched virtual circuit (SVC) is only in the interim connection that the duration of data transmission conversation sets up and maintains.
The virtual privately owned interface of 16. direct connection according to claim 1, wherein, the single physical that tissue uses the infrastructure of described public cloud provider connects, wherein, connect at the described single physical of the infrastructure to described public cloud provider, multiple service provider client obtains the access right of their oneself virtual privately owned clouds and only obtains the access right of the virtual privately owned cloud to them.
The virtual privately owned interface of 17. direct connection according to claim 16, wherein, maintain the security setting of the infrastructure of described public cloud provider, this is because for each in described multiple service provider client all virtual be unique, the flow from different multiple service provider client is not mixed.
The virtual privately owned interface of 18. direct connection according to claim 1, wherein, except multiple be organized in the infrastructure of described public cloud provider there are them virtual privately owned cloud except, the virtual privately owned interface of described direct connection is configured to also use one or more common interface, in the infrastructure of described public cloud provider, notice additional networks via BGP to use, and common interface and virtual privately owned cloud are all through the described physical connection the infrastructure of described public cloud provider and the virtual privately owned interface of described direct connection, wherein, virtual described common interface makes it possible to the commercial network service of access host computer application.
The virtual privately owned interface of 19. direct connection according to claim 18, wherein, two or more virtual routers in the infrastructure of described public cloud provider are configured to mutually distribute route, make the virtual privately owned cloud accessing them.
20. 1 kinds in public cloud infrastructure with directly connect the methods creating single physical between private virtual interface and connect, to provide virtual circuit for each virtual privately owned cloud in described public cloud infrastructure, comprising:
Configures physical port is to receive a physical connection;
For the multiple virtual privately owned cloud in the infrastructure of each public cloud provider provides two or more virtual links in a described physical connection, wherein, each public cloud infrastructure has its oneself multiple virtual privately owned cloud (VPC), wherein, each virtual privately owned cloud is the configured pool as required of the shared computation resource of distributing in given public cloud infrastructure, and each virtual privately owned cloud provides isolation to a certain degree via access control mechanism between the different tissues in pond using the shared computation resource of the public cloud infrastructure of this virtual privately owned cloud;
Configure the virtual privately owned interface of described direct connection, with from the described physical connection between described public cloud infrastructure for each virtual privately owned cloud in the infrastructure of each public cloud provider provides virtual circuit.
Applications Claiming Priority (5)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| US201361820368P | 2013-05-07 | 2013-05-07 | |
| US61/820,368 | 2013-05-07 | ||
| US14/270,667 | 2014-05-06 | ||
| US14/270,667 US9584445B2 (en) | 2013-05-07 | 2014-05-06 | Direct connect virtual private interface for a one to many connection with multiple virtual private clouds |
| PCT/US2014/037136 WO2014182805A1 (en) | 2013-05-07 | 2014-05-07 | A direct connect virtual private interface for a one to many connection with multiple virtual private clouds |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN105379227A true CN105379227A (en) | 2016-03-02 |
| CN105379227B CN105379227B (en) | 2019-05-03 |
Family
ID=51864760
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201480037868.7A Active CN105379227B (en) | 2013-05-07 | 2014-05-07 | For being directly connected to virtual privately owned interface with multiple virtual private cloud a pair of multi-connections |
Country Status (4)
| Country | Link |
|---|---|
| US (1) | US9584445B2 (en) |
| EP (1) | EP2995067B1 (en) |
| CN (1) | CN105379227B (en) |
| WO (1) | WO2014182805A1 (en) |
Cited By (22)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106169980A (en) * | 2016-06-29 | 2016-11-30 | 国家计算机网络与信息安全管理中心 | A kind of virtual network bandwidth fairness dispatching method |
| CN106330654A (en) * | 2016-09-14 | 2017-01-11 | 重庆邮电大学 | Method of realizing wireless data transmission between virtual local area networks based on WPA2-PSK |
| CN107342895A (en) * | 2017-06-26 | 2017-11-10 | 网宿科技股份有限公司 | A kind of network optimized approach of multi-tenant, system, computing device and storage medium |
| WO2017215102A1 (en) * | 2016-06-15 | 2017-12-21 | Huawei Technologies Co., Ltd. | Method of forwarding data packets, method of creating merged fib key entry and method of creating a search key |
| CN107819875A (en) * | 2017-11-27 | 2018-03-20 | 深信服科技股份有限公司 | User specially enjoys method of servicing and device under a kind of cloud platform |
| CN108833251A (en) * | 2018-08-01 | 2018-11-16 | 北京百度网讯科技有限公司 | Method and apparatus for controlling the network interconnection |
| CN108900637A (en) * | 2018-08-08 | 2018-11-27 | 北京百度网讯科技有限公司 | Method for transmitting information and device |
| CN109347715A (en) * | 2018-07-17 | 2019-02-15 | 中国银联股份有限公司 | A kind of the private line network cut-in method and its system of external tenant |
| CN109361764A (en) * | 2018-11-29 | 2019-02-19 | 杭州数梦工场科技有限公司 | The interior service access method across VPC, device, equipment and readable storage medium storing program for executing |
| CN110875889A (en) * | 2018-09-03 | 2020-03-10 | 阿里巴巴集团控股有限公司 | Method and device for acquiring path |
| CN111052686A (en) * | 2017-08-27 | 2020-04-21 | Nicira股份有限公司 | Executing online services in a public cloud |
| CN111490891A (en) * | 2019-01-28 | 2020-08-04 | 华为技术有限公司 | Method and device for determining interface configuration |
| CN112187638A (en) * | 2020-09-22 | 2021-01-05 | 杭州迪普科技股份有限公司 | Network access method, device, equipment and computer readable storage medium |
| CN112671850A (en) * | 2020-12-11 | 2021-04-16 | 中国人寿保险股份有限公司 | Hybrid cloud management method, device, medium and electronic equipment |
| US11115465B2 (en) | 2017-08-24 | 2021-09-07 | Nicira, Inc. | Accessing endpoints in logical networks and public cloud service providers native networks using a single network interface and a single routing table |
| CN113676912A (en) * | 2021-08-30 | 2021-11-19 | 南京赤诚赛斯文化传播中心 | Extensible dual-channel cooperative network communication system and device |
| US11196591B2 (en) | 2018-08-24 | 2021-12-07 | Vmware, Inc. | Centralized overlay gateway in public cloud |
| CN113783781A (en) * | 2021-08-13 | 2021-12-10 | 济南浪潮数据技术有限公司 | Method and device for interworking between virtual private clouds |
| CN114125025A (en) * | 2021-11-23 | 2022-03-01 | 北京奥星贝斯科技有限公司 | Data transmission method and device under multi-target network |
| US11343229B2 (en) | 2018-06-28 | 2022-05-24 | Vmware, Inc. | Managed forwarding element detecting invalid packet addresses |
| US11374794B2 (en) | 2018-08-24 | 2022-06-28 | Vmware, Inc. | Transitive routing in public cloud |
| US11792138B2 (en) | 2016-08-27 | 2023-10-17 | Nicira, Inc. | Centralized processing of north-south traffic for logical network in public cloud |
Families Citing this family (36)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2014088542A1 (en) * | 2012-12-03 | 2014-06-12 | Hewlett-Packard Development Company, L.P. | Cloud service managment system |
| US10623285B1 (en) * | 2014-05-09 | 2020-04-14 | Amazon Technologies, Inc. | Multi-mode health monitoring service |
| WO2015175434A1 (en) * | 2014-05-12 | 2015-11-19 | Netapp, Inc. | Bridging clouds |
| US20160080255A1 (en) * | 2014-09-17 | 2016-03-17 | Netapp, Inc. | Method and system for setting up routing in a clustered storage system |
| US11455181B1 (en) * | 2014-09-19 | 2022-09-27 | Amazon Technologies, Inc. | Cross-network connector appliances |
| US9723065B2 (en) * | 2014-10-13 | 2017-08-01 | Vmware, Inc. | Cross-cloud object mapping for hybrid clouds |
| US9553887B2 (en) * | 2014-10-13 | 2017-01-24 | Vmware, Inc. | Virtual machine compliance checking in cloud environments |
| US9882789B2 (en) * | 2014-10-29 | 2018-01-30 | At&T Intellectual Property I, L.P. | Service assurance platform as a user-defined service |
| US10250699B2 (en) | 2015-05-12 | 2019-04-02 | Equinix, Inc. | Centralized network control for a cloud-based services exchange |
| US10554620B2 (en) * | 2015-05-29 | 2020-02-04 | Cisco Technology, Inc. | Default gateway extension |
| US9667657B2 (en) * | 2015-08-04 | 2017-05-30 | AO Kaspersky Lab | System and method of utilizing a dedicated computer security service |
| US9965184B2 (en) | 2015-10-19 | 2018-05-08 | International Business Machines Corporation | Multiple storage subpools of a virtual storage pool in a multiple processor environment |
| US10348556B2 (en) * | 2016-06-02 | 2019-07-09 | Alibaba Group Holding Limited | Method and network infrastructure for a direct public traffic connection within a datacenter |
| WO2017214883A1 (en) * | 2016-06-15 | 2017-12-21 | Alibaba Group Holding Limited | Network system and method for cross region virtual private network peering |
| US10484460B2 (en) | 2016-07-22 | 2019-11-19 | Microsoft Technology Licensing, Llc | Access services in hybrid cloud computing systems |
| US10826875B1 (en) * | 2016-07-22 | 2020-11-03 | Servicenow, Inc. | System and method for securely communicating requests |
| US10225253B2 (en) | 2016-07-22 | 2019-03-05 | Microsoft Technology Licensing, Llc | Usage tracking in hybrid cloud computing systems |
| CN108347493B (en) * | 2017-01-25 | 2020-06-26 | 华为技术有限公司 | Hybrid cloud management method and device and computing equipment |
| CN107124411B (en) * | 2017-04-26 | 2019-09-06 | 优刻得科技股份有限公司 | Virtual private cloud implementation method, device and system under classic network environment |
| US10715597B2 (en) | 2017-06-16 | 2020-07-14 | At&T Intellectual Property I, L.P. | Methods and systems to create a network-agnostic SDN-based cloud gateway for connectivity to multiple cloud service providers |
| US10572307B2 (en) | 2017-07-26 | 2020-02-25 | Bank Of America Corportion | System and method of training machine learning algorithm to satisfactorily allocate resources for task execution |
| CN109462534B (en) | 2017-09-06 | 2021-04-16 | 中国银联股份有限公司 | Local interconnect controller, local interconnect control method, and computer storage medium |
| WO2019164907A1 (en) * | 2018-02-20 | 2019-08-29 | Huawei Technologies Co. Ltd. | Stitching enterprise virtual private networks (vpns) with cloud virtual private clouds (vpcs) |
| US11102214B2 (en) | 2018-08-27 | 2021-08-24 | Amazon Technologies, Inc. | Directory access sharing across web services accounts |
| US10855584B2 (en) * | 2018-12-28 | 2020-12-01 | Alibaba Group Holding Limited | Client-equipment-peering virtual route controller |
| US10778465B1 (en) * | 2019-04-02 | 2020-09-15 | Fortinet, Inc. | Scalable cloud switch for integration of on premises networking infrastructure with networking services in the cloud |
| CN110191067B (en) * | 2019-05-24 | 2023-04-18 | 深圳前海微众银行股份有限公司 | Private line network access control method, device, equipment and readable storage medium |
| US10833961B1 (en) * | 2019-06-27 | 2020-11-10 | Verizon Patent And Licensing Inc. | Configuration and/or deployment of a service based on location information and network performance indicators of network devices that are to be used to support the service |
| US11323287B2 (en) * | 2019-07-18 | 2022-05-03 | International Business Machines Corporation | Link layer method of configuring a bare-metal server in a virtual network |
| CN111049925B (en) * | 2019-12-20 | 2022-07-19 | 网易(杭州)网络有限公司 | Hybrid cloud network system, communication system and communication method |
| CN111698249B (en) * | 2020-06-11 | 2023-04-07 | 深信服科技股份有限公司 | Virtual security management and control equipment deployment method and component, communication method and system |
| US11171878B1 (en) | 2020-09-21 | 2021-11-09 | Vmware, Inc. | Allocating additional bandwidth to resources in a datacenter through deployment of dedicated gateways |
| US11606290B2 (en) * | 2021-03-25 | 2023-03-14 | Vmware, Inc. | Connectivity between virtual datacenters |
| US11805051B2 (en) | 2021-05-24 | 2023-10-31 | Vmware, Inc. | Allocating additional bandwidth to resources in a datacenter through deployment of dedicated gateways |
| US11729094B2 (en) | 2021-07-02 | 2023-08-15 | Vmware, Inc. | Source-based routing for virtual datacenters |
| US11962493B2 (en) | 2022-06-21 | 2024-04-16 | VMware LLC | Network address translation in active-active edge cluster |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102387061A (en) * | 2011-10-21 | 2012-03-21 | 华为技术有限公司 | Method, device and system for accessing VPC (virtual private cloud) to VPN (virtual private network) |
| US20120233668A1 (en) * | 2011-03-08 | 2012-09-13 | Rackspace Us, Inc. | Pluggable Allocation in a Cloud Computing System |
| CN102726007A (en) * | 2009-04-01 | 2012-10-10 | Nicira网络公司 | Method and apparatus for implementing and managing virtual switches |
| CN102884761A (en) * | 2010-04-27 | 2013-01-16 | 思科技术公司 | Virtual switching overlay for cloud computing |
Family Cites Families (18)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| GB0028113D0 (en) | 2000-05-15 | 2001-01-03 | Band X Ltd | Communication system and method |
| US6976269B1 (en) | 2000-08-29 | 2005-12-13 | Equinix, Inc. | Internet co-location facility security system |
| US8213460B1 (en) | 2000-09-07 | 2012-07-03 | Cisco Technology, Inc. | Method and system for processing traffic in an access network |
| US6515224B1 (en) | 2000-11-21 | 2003-02-04 | Equinix, Inc. | Cascading cable tray system with pre-fabricated support structure |
| US7577154B1 (en) | 2002-06-03 | 2009-08-18 | Equinix, Inc. | System and method for traffic accounting and route customization of network services |
| US7602726B1 (en) | 2003-08-11 | 2009-10-13 | Cisco Technology, Inc. | Method and system for optimizing link aggregation usage during failures |
| US8645568B2 (en) | 2007-11-16 | 2014-02-04 | Equinix, Inc. | Various methods and apparatuses for a route server |
| US8509249B2 (en) | 2009-09-04 | 2013-08-13 | Equinix, Inc. | Process and system for an integrated carrier ethernet exchange |
| WO2011060367A1 (en) | 2009-11-13 | 2011-05-19 | Equinix, Inc. | Cooling tower |
| US7937438B1 (en) | 2009-12-07 | 2011-05-03 | Amazon Technologies, Inc. | Using virtual networking devices to manage external connections |
| US9269061B2 (en) | 2009-12-10 | 2016-02-23 | Equinix, Inc. | Performance, analytics and auditing framework for portal applications |
| US8650805B1 (en) | 2010-05-17 | 2014-02-18 | Equinix, Inc. | Systems and methods for DMARC in a cage mesh design |
| EP2583211B1 (en) | 2010-06-15 | 2020-04-15 | Oracle International Corporation | Virtual computing infrastructure |
| US8402127B2 (en) | 2010-06-28 | 2013-03-19 | Bmc Software, Inc. | System and method for offering virtual private clouds within a public cloud environment |
| US8260931B2 (en) | 2010-10-02 | 2012-09-04 | Synopsys, Inc. | Secure provisioning of resources in cloud infrastructure |
| US20120102154A1 (en) | 2010-10-26 | 2012-04-26 | Futurewei Technologies, Inc. | Cloud-Based Transcoding Platform Systems and Methods |
| CA2819545C (en) | 2010-12-03 | 2020-05-12 | Level 3 Communications, Llc | Virtualized connectivity in a cloud services environment |
| US20120297066A1 (en) | 2011-05-19 | 2012-11-22 | Siemens Aktiengesellschaft | Method and system for apparatus means for providing a service requested by a client in a public cloud infrastructure |
-
2014
- 2014-05-06 US US14/270,667 patent/US9584445B2/en active Active
- 2014-05-07 WO PCT/US2014/037136 patent/WO2014182805A1/en active Application Filing
- 2014-05-07 CN CN201480037868.7A patent/CN105379227B/en active Active
- 2014-05-07 EP EP14795328.5A patent/EP2995067B1/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102726007A (en) * | 2009-04-01 | 2012-10-10 | Nicira网络公司 | Method and apparatus for implementing and managing virtual switches |
| CN102884761A (en) * | 2010-04-27 | 2013-01-16 | 思科技术公司 | Virtual switching overlay for cloud computing |
| US20120233668A1 (en) * | 2011-03-08 | 2012-09-13 | Rackspace Us, Inc. | Pluggable Allocation in a Cloud Computing System |
| CN102387061A (en) * | 2011-10-21 | 2012-03-21 | 华为技术有限公司 | Method, device and system for accessing VPC (virtual private cloud) to VPN (virtual private network) |
Cited By (35)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2017215102A1 (en) * | 2016-06-15 | 2017-12-21 | Huawei Technologies Co., Ltd. | Method of forwarding data packets, method of creating merged fib key entry and method of creating a search key |
| US10193804B2 (en) | 2016-06-15 | 2019-01-29 | Huawei Technologies Co., Ltd. | Method of forwarding data packets, method of creating merged FIB key entry and method of creating a search key |
| CN106169980A (en) * | 2016-06-29 | 2016-11-30 | 国家计算机网络与信息安全管理中心 | A kind of virtual network bandwidth fairness dispatching method |
| US11792138B2 (en) | 2016-08-27 | 2023-10-17 | Nicira, Inc. | Centralized processing of north-south traffic for logical network in public cloud |
| CN106330654A (en) * | 2016-09-14 | 2017-01-11 | 重庆邮电大学 | Method of realizing wireless data transmission between virtual local area networks based on WPA2-PSK |
| CN106330654B (en) * | 2016-09-14 | 2019-03-22 | 重庆邮电大学 | A kind of radio data transmission method between virtual LAN based on WPA2-PSK |
| CN107342895A (en) * | 2017-06-26 | 2017-11-10 | 网宿科技股份有限公司 | A kind of network optimized approach of multi-tenant, system, computing device and storage medium |
| CN107342895B (en) * | 2017-06-26 | 2019-12-10 | 网宿科技股份有限公司 | Multi-tenant network optimization method, system, computing device and storage medium |
| US11115465B2 (en) | 2017-08-24 | 2021-09-07 | Nicira, Inc. | Accessing endpoints in logical networks and public cloud service providers native networks using a single network interface and a single routing table |
| CN111052686B (en) * | 2017-08-27 | 2022-03-29 | Nicira股份有限公司 | Method and machine readable medium for performing online services in a public cloud |
| US11695697B2 (en) | 2017-08-27 | 2023-07-04 | Nicira, Inc. | Performing in-line service in public cloud |
| CN111052686A (en) * | 2017-08-27 | 2020-04-21 | Nicira股份有限公司 | Executing online services in a public cloud |
| CN107819875A (en) * | 2017-11-27 | 2018-03-20 | 深信服科技股份有限公司 | User specially enjoys method of servicing and device under a kind of cloud platform |
| CN107819875B (en) * | 2017-11-27 | 2021-04-09 | 深信服科技股份有限公司 | Method and device for sharing service exclusively by user under cloud platform |
| US11343229B2 (en) | 2018-06-28 | 2022-05-24 | Vmware, Inc. | Managed forwarding element detecting invalid packet addresses |
| CN109347715A (en) * | 2018-07-17 | 2019-02-15 | 中国银联股份有限公司 | A kind of the private line network cut-in method and its system of external tenant |
| CN109347715B (en) * | 2018-07-17 | 2021-03-30 | 中国银联股份有限公司 | Private network access method and system for external tenant |
| CN108833251B (en) * | 2018-08-01 | 2021-01-12 | 北京百度网讯科技有限公司 | Method and apparatus for controlling network interconnection |
| CN108833251A (en) * | 2018-08-01 | 2018-11-16 | 北京百度网讯科技有限公司 | Method and apparatus for controlling the network interconnection |
| CN108900637A (en) * | 2018-08-08 | 2018-11-27 | 北京百度网讯科技有限公司 | Method for transmitting information and device |
| US11374794B2 (en) | 2018-08-24 | 2022-06-28 | Vmware, Inc. | Transitive routing in public cloud |
| US11196591B2 (en) | 2018-08-24 | 2021-12-07 | Vmware, Inc. | Centralized overlay gateway in public cloud |
| CN110875889A (en) * | 2018-09-03 | 2020-03-10 | 阿里巴巴集团控股有限公司 | Method and device for acquiring path |
| CN110875889B (en) * | 2018-09-03 | 2022-09-27 | 阿里巴巴集团控股有限公司 | Method and device for acquiring path |
| CN109361764B (en) * | 2018-11-29 | 2021-02-05 | 杭州数梦工场科技有限公司 | Service access method, device and equipment of inter-VPC and readable storage medium |
| CN109361764A (en) * | 2018-11-29 | 2019-02-19 | 杭州数梦工场科技有限公司 | The interior service access method across VPC, device, equipment and readable storage medium storing program for executing |
| CN111490891B (en) * | 2019-01-28 | 2021-09-07 | 华为技术有限公司 | Method and device for determining interface configuration |
| CN111490891A (en) * | 2019-01-28 | 2020-08-04 | 华为技术有限公司 | Method and device for determining interface configuration |
| CN112187638A (en) * | 2020-09-22 | 2021-01-05 | 杭州迪普科技股份有限公司 | Network access method, device, equipment and computer readable storage medium |
| CN112671850A (en) * | 2020-12-11 | 2021-04-16 | 中国人寿保险股份有限公司 | Hybrid cloud management method, device, medium and electronic equipment |
| CN112671850B (en) * | 2020-12-11 | 2023-08-29 | 中国人寿保险股份有限公司 | Hybrid cloud management method, device, medium and electronic equipment |
| CN113783781A (en) * | 2021-08-13 | 2021-12-10 | 济南浪潮数据技术有限公司 | Method and device for interworking between virtual private clouds |
| CN113676912A (en) * | 2021-08-30 | 2021-11-19 | 南京赤诚赛斯文化传播中心 | Extensible dual-channel cooperative network communication system and device |
| CN114125025A (en) * | 2021-11-23 | 2022-03-01 | 北京奥星贝斯科技有限公司 | Data transmission method and device under multi-target network |
| CN114125025B (en) * | 2021-11-23 | 2024-02-13 | 北京奥星贝斯科技有限公司 | Data transmission method and device under multi-target network |
Also Published As
| Publication number | Publication date |
|---|---|
| EP2995067A4 (en) | 2016-12-28 |
| US9584445B2 (en) | 2017-02-28 |
| US20140334495A1 (en) | 2014-11-13 |
| EP2995067B1 (en) | 2019-01-09 |
| CN105379227B (en) | 2019-05-03 |
| WO2014182805A1 (en) | 2014-11-13 |
| EP2995067A1 (en) | 2016-03-16 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN105379227A (en) | A direct connect virtual private interface for a one to many connection with multiple virtual private clouds | |
| US10999197B2 (en) | End-to-end identity-aware routing across multiple administrative domains | |
| US10547463B2 (en) | Multicast helper to link virtual extensible LANs | |
| CN106464592B (en) | Exchange of cloud-based services | |
| Wang et al. | Network virtualization: Technologies, perspectives, and frontiers | |
| US10355989B1 (en) | Virtual performance hub | |
| CN105991432B (en) | Provider edge router and method | |
| Iyer et al. | Avalanche: Data center multicast using software defined networking | |
| US8194570B2 (en) | Configuration tool for MPLS virtual private network topologies | |
| CN100440846C (en) | Dynamic connection method for virtual private network | |
| WO2017162095A1 (en) | Communication method, device and system based on flow specification protocol | |
| US20190089620A1 (en) | Selective Route Exporting Using Source Type | |
| JP2021530912A (en) | Network slice control method and device, computer readable storage medium | |
| CN110266592A (en) | The communication means and device of SRV6 network and IP MPLS network | |
| US20100329252A1 (en) | Method and Apparatus for Enabling Multicast Route Leaking Between VRFs in Different VPNs | |
| CN105591863A (en) | Method and device for realizing interworking between virtual private cloud network and external network | |
| WO2018000890A1 (en) | Method and device for establishing virtual private network | |
| US11296997B2 (en) | SDN-based VPN traffic scheduling method and SDN-based VPN traffic scheduling system | |
| CN103326940A (en) | Method for forwarding message in network and edge device of operator | |
| CN107959611B (en) | Method, device and system for forwarding message | |
| CN103368775A (en) | Traffic backup method and core switching equipment | |
| CN103795630A (en) | Message transmitting method and device of label switching network | |
| CN103812959A (en) | Method and system for centralized management of IP addresses | |
| US20180198708A1 (en) | Data center linking system and method therefor | |
| CN108768861B (en) | Method and device for sending service message |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |